Lucene search
K

24 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-36470

Malicious code in bioql PyPI...

8.1CVSS7.9AI score0.0044EPSS
Exploits0References2
Snyk
Snyk
added 2025/09/15 8:45 p.m.5 views

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package version contains malicious code that monitors network traffic when run in a browser and targets crypto transactions. The injected malicious code activates a hook whenever a Web3 wallet is present...

9.8CVSS6.8AI score0.00473EPSS
Exploits0References2
Snyk
Snyk
added 2025/09/15 7:43 p.m.3 views

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package version contains malicious code that monitors network traffic when run in a browser and targets crypto transactions. The injected malicious code activates a hook whenever a Web3 wallet is present...

9.8CVSS6.8AI score0.00378EPSS
Exploits0References2
Snyk
Snyk
added 2025/09/15 7:43 p.m.2 views

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package version contains malicious code that monitors network traffic when run in a browser and targets crypto transactions. The injected malicious code activates a hook whenever a Web3 wallet is present...

9.8CVSS6.8AI score0.00378EPSS
Exploits0References2
Snyk
Snyk
added 2025/09/15 7:43 p.m.3 views

Embedded Malicious Code

Overview color-string is a Parser and generator for CSS color strings Affected versions of this package are vulnerable to Embedded Malicious Code. This package version contains malicious code that monitors network traffic when run in a browser and targets crypto transactions. The injected malicio...

9.8CVSS6.8AI score0.00378EPSS
Exploits0References2
Snyk
Snyk
added 2025/09/15 7:43 p.m.2 views

Embedded Malicious Code

Overview backslash is a parse string escapes \n, \r, etc. Affected versions of this package are vulnerable to Embedded Malicious Code. This package version contains malicious code that monitors network traffic when run in a browser and targets crypto transactions. The injected malicious code...

9.8CVSS6.8AI score0.00378EPSS
Exploits0References2
Snyk
Snyk
added 2025/09/15 7:43 p.m.4 views

Embedded Malicious Code

Overview color-convert is a malicious package. This package version contains malicious code that monitors network traffic when run in a browser and targets crypto transactions. The injected malicious code activates a hook whenever a Web3 wallet is present. Once triggered, it intercepts and alters...

9.8CVSS6.8AI score0.00378EPSS
Exploits0References2
Snyk
Snyk
added 2025/09/11 2:24 p.m.1 views

Embedded Malicious Code

Overview prebid-universal-creative is a javascript api to render multiple formats. This file is inserted into the prebid creative as a placeholder for the winning prebid creative. Affected versions of this package are vulnerable to Embedded Malicious Code. This package version contains malicious...

9.8CVSS6.8AI score0.00312EPSS
Exploits0References2
Snyk
Snyk
added 2025/09/09 8:45 p.m.2 views

Embedded Malicious Code

Overview duckdb is a Node.js API for DuckDB, the "SQLite for Analytics". The API for this client is somewhat compliant to the SQLite Node.js client for easier transition and transition you must eventually. Affected versions of this package are vulnerable to Embedded Malicious Code. This package...

9.8CVSS6.8AI score0.00349EPSS
Exploits0References2
Snyk
Snyk
added 2025/09/08 2:26 p.m.3 views

Embedded Malicious Code

Overview prebid.js is an open source software that is offered for free as a convenience. While it is designed to help companies address legal requirements associated with header bidding, we cannot and do not warrant that your use of Prebid.js will satisfy legal requirements. Affected versions of...

9.8CVSS7AI score
Exploits0References2
Snyk
Snyk
added 2025/09/08 2:26 p.m.2 views

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package version contains malicious code that monitors network traffic when run in a browser and targets crypto transactions. The injected malicious code activates a hook whenever a Web3 wallet is present...

9.8CVSS7.1AI score
Exploits0References2
Snyk
Snyk
added 2025/09/08 2:26 p.m.3 views

Embedded Malicious Code

Overview prebid-universal-creative is a javascript api to render multiple formats. This file is inserted into the prebid creative as a placeholder for the winning prebid creative. Affected versions of this package are vulnerable to Embedded Malicious Code. This package version contains malicious...

9.8CVSS7.1AI score
Exploits0References2
Snyk
Snyk
added 2025/09/08 2:26 p.m.1 views

Embedded Malicious Code

Overview duckdb is a Node.js API for DuckDB, the "SQLite for Analytics". The API for this client is somewhat compliant to the SQLite Node.js client for easier transition and transition you must eventually. Affected versions of this package are vulnerable to Embedded Malicious Code. This package...

9.8CVSS7AI score
Exploits0References2
Snyk
Snyk
added 2025/09/08 2:26 p.m.2 views

Embedded Malicious Code

Overview prebid is a malicious package. This package version contains malicious code that monitors network traffic when run in a browser and targets crypto transactions. The injected malicious code activates a hook whenever a Web3 wallet is present. Once triggered, it intercepts and alters any...

9.8CVSS7.1AI score
Exploits0References2
Snyk
Snyk
added 2025/09/08 2:26 p.m.1 views

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package version contains malicious code that monitors network traffic when run in a browser and targets crypto transactions. The injected malicious code activates a hook whenever a Web3 wallet is present...

9.8CVSS7.1AI score
Exploits0References2
Snyk
Snyk
added 2025/09/08 2:26 p.m.2 views

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package version contains malicious code that monitors network traffic when run in a browser and targets crypto transactions. The injected malicious code activates a hook whenever a Web3 wallet is present...

9.8CVSS7.1AI score
Exploits0References2
Snyk
Snyk
added 2025/09/08 2:26 p.m.6 views

Embedded Malicious Code

Overview @duckdb/node-api is an API for using DuckDB in Node. Affected versions of this package are vulnerable to Embedded Malicious Code. This package version contains malicious code that monitors network traffic when run in a browser and targets crypto transactions. The injected malicious code...

9.8CVSS7.1AI score
Exploits0References2
Snyk
Snyk
added 2025/09/08 2:26 p.m.5 views

Embedded Malicious Code

Overview supports-hyperlinks is a Detect whether a terminal supports hyperlinks Affected versions of this package are vulnerable to Embedded Malicious Code. This package version contains malicious code that monitors network traffic when run in a browser and targets crypto transactions. The inject...

9.8CVSS7AI score
Exploits0References2
Snyk
Snyk
added 2025/09/08 2:26 p.m.4 views

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package version contains malicious code that monitors network traffic when run in a browser and targets crypto transactions. The injected malicious code activates a hook whenever a Web3 wallet is present...

9.8CVSS7.1AI score
Exploits0References2
Snyk
Snyk
added 2025/09/08 2:26 p.m.3 views

Embedded Malicious Code

Overview color-string is a Parser and generator for CSS color strings Affected versions of this package are vulnerable to Embedded Malicious Code. This package version contains malicious code that monitors network traffic when run in a browser and targets crypto transactions. The injected malicio...

9.8CVSS7.1AI score
Exploits0References2
Rows per page
Query Builder